8146 matches found
CVE-2025-68336 locking/spinlock/debug: Fix data-race in do_raw_write_lock
In the Linux kernel, the following vulnerability has been resolved: locking/spinlock/debug: Fix data-race in dorawwritelock KCSAN reports: BUG: KCSAN: data-race in dorawwritelock / dorawwritelock write marked to 0xffff800009cf504c of 4 bytes by task 1102 on cpu 1: dorawwritelock+0x120/0x204...
CVE-2025-68336
CVE-2025-68336 corresponds to a Linux kernel data-race in the spinlock debug path (locking/spinlock/debug: do_raw_write_lock). Connected sources confirm KCSAN-detected races between a write and a read on 0xffff800009cf504c, and that a prior commit (1a365e822372) addressing several races was incom...
CVE-2025-68336
In the Linux kernel, the following vulnerability has been resolved: locking/spinlock/debug: Fix data-race in dorawwritelock KCSAN reports: BUG: KCSAN: data-race in dorawwritelock / dorawwritelock write marked to 0xffff800009cf504c of 4 bytes by task 1102 on cpu 1: dorawwritelock+0x120/0x204...
CVE-2025-68326 drm/xe/guc: Fix stack_depot usage
In the Linux kernel, the following vulnerability has been resolved: drm/xe/guc: Fix stackdepot usage Add missing stackdepotinit call when CONFIGDRMXEDEBUGGUC is enabled to fix the following call stack: BUG: kernel NULL pointer dereference, address: 0000000000000000 Workqueue: drmschedrunjobwork...
CVE-2025-68326
The vulnerability is in the Linux kernel DRM XE GUC path. A missing stack_depot_init() call when CONFIG_DRM_XE_DEBUG_GUC is enabled caused NULL pointer dereferences in stack_depot_save_flags, triggering a crash on drm_sched_run_job_work. The issue was fixed by cherry-picking commit 64fdf496a6929a...
CVE-2025-8305
An authenticated local user can obtain information that allows claiming security policy rules of another user due to sensitive information being printed in plaintext in Identity Agent for Terminal Services debug files...
CVE-2025-8305
CVE-2025-8305 concerns Check Point Identity Agent for Terminal Services. An authenticated local user can access plaintext debug files that expose sensitive information, enabling the user to claim security policy rules of another user. The root cause is sensitive data printed in plaintext in Ident...
EUVD-2025-204700
An authenticated local user can obtain information that allows claiming security policy rules of another user due to sensitive information being printed in plaintext in Identity Agent for Terminal Services debug files...
CVE-2025-8305 Information Disclosure in Identity Agent Debug Files
An authenticated local user can obtain information that allows claiming security policy rules of another user due to sensitive information being printed in plaintext in Identity Agent for Terminal Services debug files...
CVE-2025-8305 Information Disclosure in Identity Agent Debug Files
An authenticated local user can obtain information that allows claiming security policy rules of another user due to sensitive information being printed in plaintext in Identity Agent for Terminal Services debug files...
kernel: mm: slub: avoid wake up kswapd in set_track_prepare
A deadlock lock recursion vulnerability exists in the linux kernel such that when CONFIGDEBUGOBJECTSTIMERS is set, may wake up kswapd in settrackprepare, and try to hold the percpuhrtimerbases lock...
Check Point Identity Agent 安全漏洞
Check Point Identity Agent is an application from Check Point Israel. It is used to obtain and report identities to the Check Point Identity Awareness Security Gateway. A security vulnerability exists in Check Point Identity Agent that originates from printing sensitive information in plaintext i...
CVE-2025-68336
In the Linux kernel, the following vulnerability has been resolved: locking/spinlock/debug: Fix data-race in dorawwritelock KCSAN reports: BUG: KCSAN: data-race in dorawwritelock / dorawwritelock write marked to 0xffff800009cf504c of 4 bytes by task 1102 on cpu 1: dorawwritelock+0x120/0x204...
PT-2025-52654
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the drm/xe/guc subsystem related to stack depot usage. Specifically, a missing stack depot init call when CONFIG DRM XE DEBUG GUC is enabled can...
Oracle Linux 9 : python3.9 (ELSA-2025-23342)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-23342 advisory. 3.9.25-2.0.1 - Remove upstream URL reference 3.9.25-2 - Move sysconfigdatadlinux.py to the debug subpackage 3.9.25-1 - Update to Python 3.9.25 3.9.24-...
CLSA-2025-1766051004 Fix CVE(s): CVE-2025-8225
SECURITY UPDATE: debuginformation memory leak in processdebuginfo - debian/patches/CVE-2025-8225.patch: prevent memory leak by checking allocnumdebuginfoentries instead of numdebuginfoentries to determine whether debuginformation has been allocated - CVE-2025-8225...
python3.9 security update
3.9.25-2.0.1 - Remove upstream URL reference 3.9.25-2 - Move sysconfigdatadlinux.py to the debug subpackage 3.9.25-1 - Update to Python 3.9.25 3.9.24-1 - Update to Python 3.9.24...
EulerOS Virtualization 2.13.1 : binutils (EulerOS-SA-2025-2534)
According to the versions of the binutils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability has been found in GNU Binutils 2.43/2.44 and classified as problematic. Affected by this vulnerability is the...
CVE-2025-14817
The component com.transsion.tranfacmode.entrance.main.MainActivity in com.transsion.tranfacmode has no permission control and can be accessed by third-party apps which can construct intents to directly open adb debugging functionality without user interaction...
CVE-2025-14817 Factory Mode App Exists Privilege Escalation Issue Allowing Third-Party Apps to Open ADB
The component com.transsion.tranfacmode.entrance.main.MainActivity in com.transsion.tranfacmode has no permission control and can be accessed by third-party apps which can construct intents to directly open adb debugging functionality without user interaction...